CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

1163 matches found

OpenVAS•added 2009/03/20 12:0 a.m.•23 views

Pixie CMS Multiple Vulnerabilities (Mar 2009) - Active Check

Pixie CMS is prone to an SQL injection SQLi vulnerability and a cross-site scripting XSS vulnerability because it fails to sufficiently sanitize user-supplied data. SPDX-FileCopyrightText: 2009 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C b...

7.5CVSS6.6AI score0.02388EPSS

Exploits1References1

OpenVAS•added 2009/03/18 12:0 a.m.•17 views

Beerwin's PhpLinkAdmin <= 1.0 Multiple Vulnerabilities - Active Check

Beerwin SPDX-FileCopyrightText: 2009 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only if description scriptoid"1.3.6.1.4.1.25623.1.0.100058";...

7.5CVSS6.8AI score0.0134EPSS

Exploits1References1

OpenVAS•added 2009/03/13 12:0 a.m.•20 views

phpCommunity2 Multiple Vulnerabilities (Mar 2009) - Active Check

phpCommunity2 is prone to multiple input validation vulnerabilities, including multiple directory traversal issues and SQL-injection issues, and a cross-site scripting issue. SPDX-FileCopyrightText: 2009 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are...

6.8CVSS6AI score0.01099EPSS

Exploits0References1

OpenVAS•added 2009/03/10 12:0 a.m.•36 views

BlindBlog Multiple Local File Include and SQL Injection Vulnerabilities

BlindBlog is prone to a local file-include vulnerability and multiple SQL-injection vulnerabilities because it fails to properly sanitize user-supplied input. An attacker can exploit the local file-include vulnerability using directory-traversal strings to view and execute arbitrary local files...

0.3AI score

Exploits0

exploitpack•added 2009/03/10 12:0 a.m.•11 views

Nenriki CMS 0.5 - ID Cookie SQL Injection

Nenriki CMS 0.5 - ID Cookie SQL Injection source: https://www.securityfocus.com/bid/34067/info Nenriki CMS is prone to an SQL-injection vulnerability because it fails to sufficiently sanitize user-supplied data before using it in an SQL query. Exploiting this issue could allow an attacker to...

0.5AI score

Exploits0

OpenVAS•added 2009/03/06 12:0 a.m.•17 views

EZ-Blog 'public/view.php' SQL Injection Vulnerability

EZ-Blog is prone to an SQL-injection vulnerability because it fails to sufficiently sanitize user-supplied data before using it in an SQL query. Exploiting this issue could allow an attacker to compromise the application, access or modify data, or exploit latent vulnerabilities in the underlying...

6.8CVSS0.7AI score0.00913EPSS

Exploits1

exploitpack•added 2009/03/06 12:0 a.m.•12 views

TinXCMS 3.5 - rss.php SQL Injection

TinXCMS 3.5 - rss.php SQL Injection source: https://www.securityfocus.com/bid/34021/info TinX CMS is prone to an SQL-injection vulnerability because it fails to sufficiently sanitize user-supplied data before using it in an SQL query. Exploiting this issue could allow an attacker to compromise th...

0.1AI score

Exploits0

Exploit DB•added 2009/03/06 12:0 a.m.•20 views

TinXCMS 3.5 - 'rss.php' SQL Injection

source: https://www.securityfocus.com/bid/34021/info TinX CMS is prone to an SQL-injection vulnerability because it fails to sufficiently sanitize user-supplied data before using it in an SQL query. Exploiting this issue could allow an attacker to compromise the application, access or modify data...

7.4AI score

Exploits0

OpenVAS•added 2009/03/06 12:0 a.m.•35 views

GForge Multiple SQLi Vulnerabilities (Mar 2009) - Active Check

GForge is prone to multiple SQL injection SQLi vulnerabilities because it fails to sufficiently sanitize user-supplied input before using it in an SQL query. SPDX-FileCopyrightText: 2009 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the...

7.5CVSS7.5AI score0.02321EPSS

Exploits2References1

exploitpack•added 2009/03/05 12:0 a.m.•12 views

Amoot Web Directory - Password Field SQL Injection

Amoot Web Directory - Password Field SQL Injection source: https://www.securityfocus.com/bid/34016/info Amoot Web Directory is prone to an SQL-injection vulnerability because it fails to sufficiently sanitize user-supplied data before using it in an SQL query. Exploiting this issue could allow an...

0.7AI score

Exploits0

Exploit DB•added 2009/03/05 12:0 a.m.•15 views

Amoot Web Directory - Password Field SQL Injection

source: https://www.securityfocus.com/bid/34016/info Amoot Web Directory is prone to an SQL-injection vulnerability because it fails to sufficiently sanitize user-supplied data before using it in an SQL query. Exploiting this issue could allow an attacker to compromise the application, access or...

7AI score

Exploits0

OpenVAS•added 2009/03/02 12:0 a.m.•30 views

A4Desk Event Calendar 'eventid' Parameter SQL Injection Vulnerability

A4Desk Event Calendar is prone to an SQL-injection vulnerability because it fails to sufficiently sanitize user-supplied data before using it in an SQL query. Exploiting this issue could allow an attacker to compromise the application, access or modify data, or exploit latent vulnerabilities in t...

6.8CVSS0.3AI score0.0109EPSS

Exploits1

OpenVAS•added 2009/03/02 12:0 a.m.•26 views

Joomla! and Mambo JoomRadio Component 'id' Parameter SQL Injection Vulnerability

The JoomRadio component for Joomla! and Mambo is prone to an SQL-injection vulnerability because it fails to sufficiently sanitize user-supplied data before using it in an SQL query. Exploiting this issue could allow an attacker to compromise the application, access or modify data, or exploit...

7.5CVSS0.5AI score0.01206EPSS

Exploits0

exploitpack•added 2009/02/28 12:0 a.m.•10 views

CMSCart 1.04 - maindatafunctions.php SQL Injection

CMSCart 1.04 - maindatafunctions.php SQL Injection source: https://www.securityfocus.com/bid/34017/info CMSCart is prone to an SQL-injection vulnerability because it fails to sufficiently sanitize user-supplied data before using it in an SQL query. Exploiting this issue could allow an attacker to...

0.2AI score

Exploits0

Exploit DB•added 2009/02/27 12:0 a.m.•23 views

Irokez Blog 0.7.3.2 - Multiple Input Validation Vulnerabilities

source: https://www.securityfocus.com/bid/33931/info Irokez Blog is prone to multiple input-validation vulnerabilities: - A cross-site scripting issue - An SQL-injection issue - Multiple remote file-include issues Exploiting these issues could allow an attacker to steal cookie-based authenticatio...

7.4AI score

Exploits0

Exploit DB•added 2009/02/26 12:0 a.m.•22 views

Parsi PHP CMS 2.0 - 'index.php' SQL Injection

source: https://www.securityfocus.com/bid/33914/info Parsi PHP CMS is prone to an SQL-injection vulnerability because it fails to sufficiently sanitize user-supplied data before using it in an SQL query. Exploiting this issue could allow an attacker to compromise the application, access or modify...

7.4AI score

Exploits0

exploitpack•added 2009/02/10 12:0 a.m.•8 views

Banking@Home 2.1 - login.asp Multiple SQL Injections

Banking@Home 2.1 - login.asp Multiple SQL Injections source: https://www.securityfocus.com/bid/33721/info Banking@Home is prone to multiple SQL-injection vulnerabilities because it fails to sufficiently sanitize user-supplied data before using it in an SQL query. Exploiting these issues could all...

0.2AI score

Exploits0

exploitpack•added 2009/01/15 12:0 a.m.•9 views

MKPortal 1.2.1 - modulesblogindex.php Home Template Textarea SQL Injection

MKPortal 1.2.1 - modulesblogindex.php Home Template Textarea SQL Injection source: https://www.securityfocus.com/bid/33300/info MKPortal is prone to multiple security vulnerabilities, including SQL-injection, HTML-injection, cross-site scripting, arbitrary-file-upload, and...

0.5AI score

Exploits0

exploitpack•added 2009/01/15 12:0 a.m.•12 views

Active Bids - search Cross-Site Scripting

Active Bids - search Cross-Site Scripting source: https://www.securityfocus.com/bid/33306/info Active Auction House and Active Auction Pro are prone to SQL-injection and cross-site scripting vulnerabilities because they fail to sufficiently sanitize user-supplied data. Exploiting these issues cou...

6.8AI score

Exploits0

exploitpack•added 2009/01/15 12:0 a.m.•12 views

Active Bids - search SQL Injection

Active Bids - search SQL Injection source: https://www.securityfocus.com/bid/33306/info Active Auction House and Active Auction Pro are prone to SQL-injection and cross-site scripting vulnerabilities because they fail to sufficiently sanitize user-supplied data. Exploiting these issues could allo...

8.7AI score

Exploits0

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by